mbk-lab
/
nextcloud
2
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Ignore "session_lifetime" if it can not be converted to a number 

When "session_lifetime" can not be converted to a number the interval
becomes a NaN due to dividing it by 2. This NaN was "dragged" over all
the other mathematical operations and caused the csrftoken to be got
again and again due to an infinite loop with no pauses in "setInterval".
Now, the interval is set to the default value instead if the
"session_lifetime" can not be converted to a number.

Signed-off-by: Daniel Calviño Sánchez <danxuliu@gmail.com>
This commit is contained in:
Daniel Calviño Sánchez 2018-10-11 10:53:25 +02:00
parent 9277d242b0
commit c2916b62d3
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
core/js/js.js
View File

@ -1383,10 +1383,12 @@ function initCore() {
*/ */
function initSessionHeartBeat() { function initSessionHeartBeat() {
// interval in seconds // interval in seconds
var interval = 900; var interval = NaN;
if (oc_config.session_lifetime) { if (oc_config.session_lifetime) {
interval = Math.floor(oc_config.session_lifetime / 2); interval = Math.floor(oc_config.session_lifetime / 2);
} }
interval = isNaN(interval)? 900: interval;
// minimum one minute // minimum one minute
interval = Math.max(60, interval); interval = Math.max(60, interval);
// max interval in seconds set to 24 hours // max interval in seconds set to 24 hours